Juju SSH doesn't attempt to use ED25519 keys
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Canonical Juju |
Fix Committed
|
High
|
Thomas Miller |
Bug Description
While Juju is able to make use of ED25519 keys for SSH, it doesn't try to use them by default.
I've been able to add an ED25519 public key to a model:
stg-terraform-
256 MD5:8b:
stg-terraform-
Keys used in model: admin/stg-
8b:b5:49:
I can use that key to SSH manually to a juju-deployed machine:
stg-terraform-
Welcome to Ubuntu 20.04.6 LTS (GNU/Linux 5.4.0-139-generic x86_64)
However, Juju SSH doesn't work as the key is never tried:
stg-terraform-
stg-terraform-
I can trick Juju into working by copying or linking the ED25519 key as "id_rsa":
stg-terraform-
stg-terraform-
Welcome to Ubuntu 20.04.6 LTS (GNU/Linux 5.4.0-139-generic x86_64)
Or of course by specifying the key ("juju ssh 4 -i .ssh/id_ed25519").
-------
It may be determined that this bug is a duplicate of #1901923, but it is unclear to me from reading the info in that bug and from reading the Juju documentation what exactly "supported" means in this situation.
This appears to be intended behaviour rather than a bug, as the comment here (https:/
Is there a way to change this default? Or for Juju to try keys other than "id_rsa"?
Thanks!
tags: | added: canonical-is |
Changed in juju: | |
importance: | Undecided → High |
milestone: | none → 3.2.1 |
status: | New → Triaged |
Changed in juju: | |
assignee: | nobody → Jack Shaw (jack-shaw) |
Changed in juju: | |
milestone: | 3.2.1 → 2.9.44 |
Changed in juju: | |
status: | Triaged → Fix Committed |
Changed in juju: | |
status: | Fix Committed → Fix Released |
Juju only works with keys stored as "id_dsa.pub", "id_rsa.pub", "identity.pub". Unfortunately, this is not documented anywhere. See the corresponding code here https:/ /github. com/juju/ juju/blob/ develop/ cmd/juju/ common/ authkeys. go#L87
Could you please retry with the aforementioned filenames?